URLhaus Database

You are currently viewing the URLhaus database entry for http://185.172.128.69/newumma.exe which is being or has been used to serve malware. Please consider that URLhaus does not differentiate between websites that have been compromised by hackers and such that has been setup by cybercriminals for the sole purpose of serving malware.

Database Entry



Add tag Remove tag Perform URL rescan Delete this URL Report a False Positive
ID:2722940
URL: http://185.172.128.69/newumma.exe
URL Status:Offline
Host: 185.172.128.69
Date added:2023-10-22 09:40:10 UTC
Last online:2023-11-29 12:XX:XX UTC
Threat:Malware download Malware download
Reporter: andretavare5
Abuse complaint sent (?): Yes (2023-10-22 09:41:04 UTC to abuse{at}tnsecurityl[dot]ltd)
Takedown time:1 month, 8 days, 3 hours, 3 minutes Bad (down since 2023-11-29 12:44:06 UTC)
Tags:dropped-by-PrivateLoader glupteba link Smoke Loader link Stealc

Payload delivery

The table below documents all payloads that URLhaus retrieved from this particular URL.

FirstseenFilenameFile TypePayload (SHA256)VTBazaarSignature
2023-11-13n/aexe e340efd16c8fc3ed295ec674e97bed2ec4bc1e2a14a8089537b03da23f0f47ffn/a Glupteba
2023-11-12n/aexe 8595d77f3442a3ea8ce5bbf15e2ee69eebac087bd35a29bc03d6f3e98957c4fen/a 
2023-11-12n/aexe 0121f3a0d78e1081d4e1b19232d6b202acf1b8e54b8658b892d01f3efdc9428cn/a
2023-11-12n/aexe c8790db260cf26290bbafcd3d17d3e33e6bc3e5fa65bbc248a9e03cde96d8f8eVirustotal results 60.56%Smoke Loader
2023-11-12n/aexe a8fcef9a9b81e5db11f0ed6444943f8540d3875cdb8b1c0862abcebcf648e5ean/aStealc
2023-11-11n/aexe 6a1dbe2bdacdbe77a94de61ffc0001e87adcfb51f85d1a3066e1f1924bb2f496Virustotal results 63.89%Stealc
2023-11-10n/aexe 997585dddb2b230656f708be5add526f5e9322d4af25d85bb2982b7a280f98a9Virustotal results 60.56%Stealc
2023-11-10n/aexe 39eda85740817da8e123ed2c96fbe131356b31a6a98231a522e271cd35748829n/aStealc
2023-11-10n/aexe ca3040a40850c986cb8461a90f6b43bcffa783d9cc0446d4641a7c95d47258faVirustotal results 62.50%Glupteba
2023-11-02n/aexe 17dcaf577cf11c74fe2602cc48d5c2661ae2352aee4a44a86b29cf91b1ab87dcn/a 
2023-11-02n/aexe 15e3e64bfbc600ef0980876445cb33ffe81543b9915386a7d0e03e5619a5d2b7n/a Glupteba
2023-11-01n/aexe c4a2e403dc091a191ae09578bf914baf70fd9b2d9593f8061dc953cbd431e5b5n/aGlupteba
2023-10-31n/aexe 41d8b721de672bdf2db9e87ad7e322ddfc0e95ce54ccbf209d0b6a6adbcdf459n/a 
2023-10-31n/aexe 7b101e4c3f86d6b121d25c79d718af9b24ad1ba2bbf9ad83dc285b8ba2e4756an/aSmoke Loader
2023-10-29n/aexe 4aa80d6935201d51bc5be593908289cc2e239be14991a5dc6054bb19e7f90c44n/a Glupteba
2023-10-27n/aexe adb6d89cae18f5501ce8c7e25a22de907bec44d74f583f9c5b2499a5e955534bn/aSmoke Loader
2023-10-26n/aexe 6a9ca8cd0fe53e1036bc16b292926a413dc4aa896f4da8a29afd10c65138799fVirustotal results 61.11%Glupteba
2023-10-25n/aexe 82ece5e948ab466f78cc02f5cec49ded063af38623f32fd5bf9b00538e00caceVirustotal results 55.56%Smoke Loader
2023-10-25n/aexe c99fe181f72e4484c5de24d3edd0e51641dcb8cd6f24fc2b2b05ce1ef2b4220dn/aSmoke Loader
2023-10-24n/aexe 50b852efec2541b4f054478c6f86b86349750b495231fe89a3b4f20c0f828206n/a 
2023-10-24n/aexe e30d175069d8b2cfacb4ae58ef031a817141a320ab6c69923239afffdc897bf6n/aBackdoor.TeamViewer
2023-10-24n/aexe f14a2ea59f53b770192ee6e9b6f0c0c9ef614d53411aca619194490f16f1dabdn/aGlupteba
2023-10-24n/aexe cab9631230218ba0783634bd53dac1d08d084f1e119a2ba41606b276da992eccn/a 
2023-10-24n/aexe 03b694fc90079f3e3059be05035c6ccb40dd3177039b6e02ea8a24f3201702fbn/a 
2023-10-24n/aexe 00d26d8524ce924c37cbccc10d05f829b39c03037ce1b3e4d5d265d8c2993b26n/aBackdoor.TeamViewer
2023-10-24n/aexe 9e65c74ce3314c8d1611cd9f5ee8f14da13d3193cd286b2602f7eb61bebc05can/a 
2023-10-24n/aexe 94f90d551dfd3fc18c3fc5dd7c4b279b2ebc71bbb2df9619731fc1a796c8173an/aBackdoor.TeamViewer
2023-10-24n/aexe e0c2f5a34fa5222eecaaf99721a74656ffeb7473af49d06b63b89fec654ea013n/a 
2023-10-24n/aexe def2520cba90aaa6d781af1b926f93c6625975f9511f50099f374a2b91e595b5n/a 
2023-10-23n/aexe 295daf4708da6e3b7613e4ea7637739054656332c3dfdfb0499431ef267e6a39n/aGlupteba
2023-10-22n/aexe 12a5b844e946f8c8b4b4bb3301664f7a662a1341ea9171359d1c4fc25bc11b6an/aBackdoor.TeamViewer